YoVDO

Identify Malware on Compromised Files and URLs Using the PolySwarm Autopsy Plugin

Offered By: BasisTech via YouTube

Tags

Open Source Digital Forensics Conference (OSDFCon) Courses Cybersecurity Courses Digital Forensics Courses Malware Detection Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Discover how to identify malware on compromised files and URLs using the PolySwarm Autopsy plugin in this 42-minute webinar from OSDFCon. Learn about PolySwarm's innovative approach to threat detection, utilizing over 50 specialized engines competing in real-time. Explore the history of antivirus software, understand the PolySwarm platform, and see a hands-on demonstration of the Autopsy plugin. Gain insights into researcher-driven engines, the PolySwarm API, and practical scenarios for using the plugin in digital forensics. Understand concepts like Polyscore, hash lookups, and handling false positives. Get answers to common questions about multiple selection, importing hashes, and dealing with document malware. Discover additional tools like the CLI for enhanced malware analysis capabilities.

Syllabus

Introduction
Agenda
History of Antivirus
Platform Overview
Why Autopsy
How is Autopsy useful
Researcher driven engines
Why PolySwarm
PolySwarm API
Autopsy Plugin
Autopsy Demo
Demo Scenario
Using the Autopsy Plugin
Questions
Multiple selection hash lookup
Answering questions
Polyscore
Importing hashes
False positives
Doc malware
NCT token
CLI tool
Conclusion


Taught by

BasisTech

Related Courses

Computer Security
Stanford University via Coursera Cryptography II
Stanford University via Coursera Malicious Software and its Underground Economy: Two Sides to Every Story
University of London International Programmes via Coursera Building an Information Risk Management Toolkit
University of Washington via Coursera Introduction to Cybersecurity
National Cybersecurity Institute at Excelsior College via Canvas Network